Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5090-1] firefox-esr security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5090-1] firefox-esr security update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5090-1] firefox-esr security update
  • Date: Sun, 6 Mar 2022 20:43:23 +0000
  • List-archive: https://lists.debian.org/msgid-search/20220306204323.GA1917 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=fXihMhmqsUTj2qmOlz3U0LzD1QkNVRS6N3onF2nw9TU=; b=Z5 QU4z4ch8RcfrDSmFfZjePgXFtMY4ipO+Dt83nyzxIm0r1dA3g097H9jTwUv/xckOLB+FbjmyeqMwC BpeXKOmeelKqIygciY96SdIapl5Tzf5qp8HeVdN+4yD45WsTSNfG1yUmr69P5B8icKh1SURkGjY77 SrF5OCyVMG7p9rF5Ho4sdoB3nf0q6gTiFi8PZQNhC6gZKPlciJhepceJmXTv3AthBMRzKn8A7mznl hqvabsKm4d0hPYRV3FADSq1RXAXrIAbi0ojsLHSKZVj6qmdazjeX/z9HvEU8Iu2SbXvBgp4PCXUQt Vg0hqBlncuoHVfRUv2ADzlLUg259p5eg==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Sun, 6 Mar 2022 20:43:40 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <LmABNO2vcED.A.LWH.8zRJiB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5090-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
March 06, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firefox-esr
CVE ID : CVE-2022-26485 CVE-2022-26486

Two security issues have been found in the Mozilla Firefox web browser,
which result in the execution of arbitrary code.

For the oldstable distribution (buster), these problems have been fixed
in version 91.6.1esr-1~deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 91.6.1esr-1~deb11u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=UHF/
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5090-1] firefox-esr security update, Moritz Muehlenhoff, 06.03.2022

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang